About exclusions. I think ESET is doing right, not including MS recommended exclusions in default policy. If you read MS KB, they warn you: We do not recommend this workaround but are providing this information so that you can implement this workaround at your own discretion. Use this workaround at your own risk. So, it is by you to decide.